You would figure it would be something like this ?

break on

$sec = getobject ("winmgmts:win32_logicalfilesecuritysetting.path='f:\t.kix'")

$sd = getobject("winmgmts:win32_securitydescriptor")

$ok = $sec.GetSecurityDescriptor($sd)

@SERROR

exit 1